[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] iptables filtering when bridging

To: David <big.raiders.fan@xxxxxxxxx>
From: Mark McLoughlin <markmc@xxxxxxxxxx>
Date: Thu, 10 May 2007 08:38:52 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Thu, 10 May 2007 00:37:24 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

Hi,

On Wed, 2007-05-09 at 10:04 -0400, David wrote:

>   Based on http://ebtables.sourceforge.net/br_fw_ia/PacketFlow.png,
> the packet appears to be going the right way, but I can't make it go
> any further.
> 
> Is it possible to have the packets go through the iptables Filter
> tables in Dom0? 

        Yep, packets should be going through iptables as they traverse the
bridge in Dom0 (as the diagram shows), unless it's explicitly disabled.
What does:

  $> sysctl net.bridge.bridge-nf-call-iptables

        show? (It should be "1")

Cheers,
Mark.


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Follow-Ups:
- Re: [Xen-devel] iptables filtering when bridging
  - From: David

References:
- [Xen-devel] iptables filtering when bridging
  - From: David

Prev by Date: Re: [Xen-devel] fair scheduling
Next by Date: Re: [Xen-devel] fair scheduling
Previous by thread: [Xen-devel] iptables filtering when bridging
Next by thread: Re: [Xen-devel] iptables filtering when bridging
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.